Alisa Chestler on Compliance

DOJ Final Rule Targets Cross-Border Data Transfers: Key Implications for U.S. and Foreign-Owned Companies Operating in the U.S.

In the final days of the Biden administration the U.S. Department of Justice (DOJ) issued a sweeping set of regulations which are in effect as of yesterday, April 8, 2025. The regulations focus on cross-border data transfers...more

4/9/2025 / China , Compliance , Cross-Border Transactions , Data Privacy , Department of Justice (DOJ) , Final Rules , International Data Transfers , National Security , Personal Data , Regulatory Requirements , Russia , Sensitive Personal Information

Proposed HIPAA Security Rule Updates

The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) issued a Notice of Proposed Rulemaking (NPRM) on December 27, 2024, to update the Health Insurance Portability and Accountability Act...more

1/13/2025 / Compliance , Cybersecurity , Data Privacy , Data Security , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Health Insurance Portability and Accountability Act (HIPAA) , NIST , OCR , Risk Management

Cybersecurity: A Whistleblower's Paradise

Cyber whistleblowing is the newest and hottest area of exposure for organizations. All government contractors and grant recipients must develop an understanding of the use of the False Claims Act (FCA) to address...more

4/15/2022 / Biden Administration , Civil Monetary Penalty , Compliance , Cyber Crimes , Cybersecurity , Department of Justice (DOJ) , Enforcement Actions , Executive Orders , False Claims Act (FCA) , Federal Contractors , Federal Grants , Popular , Qui Tam , Risk Management , Whistleblowers

No Time to Rest: HHS Marches Ahead with Interoperability and Information Blocking Updates

On April 21, 2020, the U.S. Department of Health and Human Services released a series of announcements signaling its intention to finalize and enforce certain aspects of the Office of the National Coordinator (ONC) Cures Act...more

4/30/2020 / Blocking Statutes , Centers for Medicare & Medicaid Services (CMS) , Civil Monetary Penalty , Compliance , Department of Health and Human Services (HHS) , Health Care Providers , Health IT , OIG , ONC , Patient Access , Popular , Proposed Rules

HIPAA Settlement Regarding Use of Internet Applications

On July 10, 2015, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) announced a settlement agreement with St. Elizabeth's Medical Center (SEMC) in Brighton, Massachusetts, regarding potential...more

7/16/2015 / Compliance , Corrective Actions , Data Breach , Data Privacy , Data Protection , Data Security , Data-Sharing , Department of Health and Human Services (HHS) , Electronically Stored Information , Health Information Technologies , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , OCR , Passwords , Settlement Agreements

HHS's New Security Risk Tool for HIPAA Compliance

On March 28, 2014, the HHS Office of the National Coordinator for Health Information Technology (ONC), in conjunction with the HHS Office for Civil Rights (OCR), released a Security Risk Assessment tool (SRA tool) to assist...more

4/1/2014 / Compliance , Cybersecurity , Data Breach , Data Protection , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , OCR

HHS Issues Guidance on Permitted Remuneration for Prescription Refill Reminders in the Absence of Patient Authorization

On September 19, the Health and Human Services Department (HHS) issued guidance on the effect of the January 25, 2013 Final Rule provision about remuneration related to prescription refill reminders and medication adherence...more

9/27/2013 / Compliance , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Omnibus Rule , Refill Reminders , Remuneration

Alisa Chestler

Baker Donelson

Popular Topics by This Author

Latest Posts › Compliance